Behavioral task
behavioral1
Sample
2b57157a8288abcf9986f0c145049b77.exe
Resource
win7-20231215-en
General
-
Target
2b57157a8288abcf9986f0c145049b77
-
Size
402KB
-
MD5
2b57157a8288abcf9986f0c145049b77
-
SHA1
229d4725e867db7a33db8806b4045e913b435980
-
SHA256
2f5fa4bcaabac7bfd9e31e77c9fd93ef638fbff614774cc3032ad3ae5c165964
-
SHA512
57c4cfbbe32acda1a9734b84e7fba12a28c45101aceec571983651b2ef49a2ba808bbc13dfdf1df55ab27b8b45f4283bac33d4b29de9d46df87e32fc2504b0ab
-
SSDEEP
6144:pmaKVBGmE84IMNv55giU0pKiFYHxfx15RvOagakZBxkTN2gmeGcFnVQb/DAYbDgF:+SmLAuEY71fviagATFmebVQDcYc5
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2b57157a8288abcf9986f0c145049b77
Files
-
2b57157a8288abcf9986f0c145049b77.exe windows:4 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 620KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 370KB - Virtual size: 372KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX2 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE